$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft File: k524p4YADCa65IN7bs2uD4q60bA.mft (raw, json) Hash identifier: tJOXYfBf5fIRUvYowiN/s8FI7AR64vR2qW8S/D01JrE= Subject key identifier: B7:99:63:8B:D2:87:29:33:64:4E:9F:7E:C2:5E:44:9D:B6:BB:22:E8 Authority key identifier: 93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 Certificate issuer: /CN=A91CDEB3/serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Certificate serial: 1815 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft Manifest number: 17F9 Signing time: Fri 31 May 2024 17:11:04 +0000 Manifest this update: Fri 31 May 2024 17:11:03 +0000 Manifest next update: Fri 07 Jun 2024 17:11:03 +0000 Files and hashes: 1: k524p4YADCa65IN7bs2uD4q60bA.crl (hash: Xt7TJcII6aqsEQDziOdVu7xHn/M9VS4iEUWuLWO39dk=) 2: 5705E30EFC7A11E8BFCC760AC4F9AE02.roa (hash: n97P+4V0tKPB5lzYkARlGRCQJJyVTdEeSb9i+z1QIAM=) 3: A6ACA298858911E88026B416C4F9AE02.roa (hash: Q2m770Vn+WGuanvd0RoTq0rdlgedJHaVYLneYgONfTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6165 (0x1815) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDEB3/serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Validity Not Before: May 31 17:11:03 2024 GMT Not After : Jun 7 17:11:03 2024 GMT Subject: CN=665a04a7-99f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cc:09:f1:87:11:62:6e:f4:5d:a3:a7:0c:7f: 31:3d:c9:2f:0c:60:0d:88:9f:ad:2b:5f:85:14:43: 0d:3e:fa:71:b3:ac:36:3c:87:34:3e:f2:0a:d3:66: 75:f8:5c:d5:13:52:d5:8d:34:3c:4b:4c:db:58:cd: b5:56:e2:68:4b:51:32:8d:e7:99:72:8a:ca:65:89: 80:c4:b1:67:66:d6:5c:60:53:04:a0:27:30:80:d0: cd:12:28:9a:65:a8:73:ee:4c:76:a4:69:a2:93:d0: 97:bc:bb:64:a1:35:73:ee:37:eb:29:8a:d3:50:00: 91:57:bf:98:98:be:32:ce:07:3e:a4:46:ae:15:eb: c2:56:e0:c5:e2:cc:28:99:67:ac:90:66:33:18:55: 16:17:c8:80:cd:b4:8f:e1:97:5f:0a:c1:9c:44:51: 07:63:e6:0e:18:85:08:2d:cc:39:01:18:49:04:92: e2:d0:6d:4b:59:ca:58:9a:81:aa:f9:6a:0e:ea:09: e8:7a:f2:92:17:4b:49:11:65:7c:79:51:ef:6d:a6: be:a6:93:90:81:0c:96:67:67:4e:bc:de:82:28:8d: 2b:8c:a9:57:3c:bd:03:2c:d7:1f:f9:ac:e1:9b:22: bf:65:bd:fd:fe:61:98:c0:83:fd:91:68:fb:e2:da: 67:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:99:63:8B:D2:87:29:33:64:4E:9F:7E:C2:5E:44:9D:B6:BB:22:E8 X509v3 Authority Key Identifier: keyid:93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:f7:c3:84:45:2c:a2:a7:74:35:b3:06:ed:5c:b1:a9:fb:ec: 19:67:4e:63:15:8c:4c:54:c2:db:40:4a:0f:b8:18:0b:88:90: d7:93:27:4e:09:78:68:12:83:5b:b9:86:12:29:66:46:c6:82: fb:fe:93:5c:54:a2:ec:70:14:ed:ca:82:28:fe:6e:42:e7:38: 32:18:31:17:13:f4:8a:1b:e7:82:d4:45:47:02:65:02:ea:5b: c9:91:11:9e:1c:de:fe:24:f6:71:dc:90:5f:0f:3b:f7:ae:05: 63:4b:23:b1:8e:9f:58:8b:76:60:71:54:4e:83:9a:9e:cb:19: e4:67:3f:ca:b8:0b:cc:aa:57:e7:61:33:87:ae:32:da:9f:76: e9:7d:8f:25:82:4f:e2:30:97:bf:d0:cb:6a:6e:56:46:4b:ff: 78:3d:1c:c0:c1:ec:42:2f:d8:48:e8:1f:dc:85:ab:03:28:35: 32:9c:0f:2f:49:57:9f:41:29:4c:9e:bb:ad:7e:42:05:1f:b1: 21:d3:9f:ac:6c:a2:ef:7a:ea:8b:44:b7:8a:c9:01:4d:da:f7: a5:ce:5a:b9:20:1d:5b:9a:54:06:e6:92:03:2e:2c:93:5a:fe: 38:47:2a:10:5c:b9:e9:f0:4b:bf:a9:77:0a:9f:d5:9c:dd:57: 17:eb:19:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RFQjMxMTAvBgNVBAUTKDkzOURCOEE3ODYwMDBDMjZCQUU0ODM3QjZFQ0RBRTBG OEFCQUQxQjAwHhcNMjQwNTMxMTcxMTAzWhcNMjQwNjA3MTcxMTAzWjAYMRYwFAYD VQQDEw02NjVhMDRhNy05OWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyswJ8YcRYm70XaOnDH8xPckvDGANiJ+tK1+FFEMNPvpxs6w2PIc0PvIK02Z1 +FzVE1LVjTQ8S0zbWM21VuJoS1EyjeeZcorKZYmAxLFnZtZcYFMEoCcwgNDNEiia Zahz7kx2pGmik9CXvLtkoTVz7jfrKYrTUACRV7+YmL4yzgc+pEauFevCVuDF4swo mWeskGYzGFUWF8iAzbSP4ZdfCsGcRFEHY+YOGIUILcw5ARhJBJLi0G1LWcpYmoGq +WoO6gnoevKSF0tJEWV8eVHvbaa+ppOQgQyWZ2dOvN6CKI0rjKlXPL0DLNcf+azh myK/Zb39/mGYwIP9kWj74tpnwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLeZY4vS hykzZE6ffsJeRJ22uyLoMB8GA1UdIwQYMBaAFJOduKeGAAwmuuSDe27Nrg+KutGw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREVCMy81RDczNUQ0Njk2 REUxMUU3QkE3RDJBNzdDNEY5QUUwMi9rNTI0cDRZQURDYTY1SU43YnMydUQ0cTYw YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s1MjRwNFlBRENhNjVJTjdiczJ1RDRxNjBiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REVCMy81RDczNUQ0Njk2REUxMUU3QkE3RDJBNzdDNEY5QUUwMi9rNTI0cDRZQURD YTY1SU43YnMydUQ0cTYwYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX98OERSyip3Q1swbtXLGp++wZZ05jFYxMVMLbQEoPuBgLiJDXkydO CXhoEoNbuYYSKWZGxoL7/pNcVKLscBTtyoIo/m5C5zgyGDEXE/SKG+eC1EVHAmUC 6lvJkRGeHN7+JPZx3JBfDzv3rgVjSyOxjp9Yi3ZgcVROg5qeyxnkZz/KuAvMqlfn YTOHrjLan3bpfY8lgk/iMJe/0MtqblZGS/94PRzAwexCL9hI6B/chasDKDUynA8v SVefQSlMnrutfkIFH7Eh05+sbKLveuqLRLeKyQFN2velzlq5IB1bmlQG5pIDLiyT Wv44RyoQXLnp8Eu/qXcKn9Wc3VcX6xnO -----END CERTIFICATE-----Generated at Fri May 31 20:34:15 2024 by rpki-client on console-ams.rpki-client.org